First published: Tue Aug 24 2021(Updated: )
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. User traffic might unexpectedly be leaked to a proxy server despite PAC configurations.
Credit: cve@mitre.org cve@mitre.org Michal Rajcan JamfMatt Vlasach JamfMichal Rajcan JamfMatt Vlasach JamfMichal Rajcan JamfMatt Vlasach JamfMichal Rajcan JamfMatt Vlasach Jamf
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPadOS | <15.2 | |
Apple iPhone OS | <15.2 | |
Apple macOS | <12.1 | |
Apple tvOS | <15.2 | |
Apple watchOS | <8.3 | |
Apple watchOS | <8.3 | 8.3 |
Apple macOS Monterey | <12.1 | 12.1 |
Apple tvOS | <15.2 | 15.2 |
Apple iOS | <15.2 | 15.2 |
Apple iPadOS | <15.2 | 15.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2021-30966 is a vulnerability in CFNetwork Proxies that allows user traffic to be leaked to a proxy server despite PAC configurations.
The severity of CVE-2021-30966 is high, with a severity value of 7.5.
CVE-2021-30966 affects macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.
CVE-2021-30966 is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2, iPadOS 15.2, and tvOS 15.2.
More information about CVE-2021-30966 can be found at the following references: [link1], [link2], [link3].